If this is your first visit, be sure to
check out the FAQ by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

Blocking cracked software

I have approximately 75 employees all on Windows XPsp2 in an Active Directory domain environment. These employees don't seem to grasp the concept of why cracked software doesn't belong in the workplace. So I figured like any good solution I will just throw money at it. Can anyone recommend some good software that can monitor applications installed on the end users machine and or possibly block cracked software? Also if anyone has any other good ideas on how to solve this issue I will except that too. Thanks.

These are great solutions to the problem and if you are looking for software i use SIW http://www.gtopala.com/ this will show what software is running on the computers. But like they said it before, permissions and user restrictions are your best solution. With the right group policies you can knock this out in no time.

stop access to 'run' command
deny ALL attachments in outlook, you can always grab some from filter if really required
it is best to set a 'deny all' policy, then to fine tune it to allow certain 'trusted' senders
rather than an 'allow all' where YOU have to check everything

use of group policy is THE way to go
set it onto the PC's too

set up a bunch of groups, with each having certain permissions set, drop users and their PC into the required group

it is easiest to do it from a group level, as micro managing everything is impossible once you get above just a dozen persons

even the military recognise this
each level up / rank, has 'power' over those lower, and those immediately lower number around a dozen

general talks to his colonels
colonels talk to their captains
captains talk to their sergeants
sergeants talk to their infantry troop

you get the picture

generals do not need to talk to troops

hell, even jesus could only man manage a dozen disciples

and definately get an AUP up abd running
to be signed by all
and to be adhered to

55 - I'm fiftyfeckinfive and STILL no wiser,
OLDER yes
Beware of Geeks bearing GIF's
come and waste the day :P at The Taz Zone

3. Look at your software and hardware solution options to implement and monitor #1 and #2. You have lots of good stuff above

I don't know your precise environment, but I will suggest that you look at a few more ideas that were not fully developed earlier in this thread.

1. Beware the dreaded laptop. You need to look at those very carefully, particularly as they tend to be issued to relatively senior and trusted personnel. I would personally require that if they are taken offsite they be audited and scanned on their return, and before they can access your network. IME senior management frequently have offspring that have bred true to type

2. NO! absolutely NO! P2P............... not never, notime!

3. Content/IP filtering............ if they really need those sites, let them come and ask. Foxy~ was getting at that with his comments on "really required".

4. Try to resist wireless until you are happy you can secure yourself as well as you can against USB devices.

7. Mail attachments can be an issue............ maybe some people need them........... look for a system that quarantines them so the recipient has to come and ask.......... that is a great deterrent

Just a few thoughts to be going on with................

If you cannot do someone any good: don't do them any harm....
As long as you did this to one of these, the least of my little ones............you did it unto Me.
What profiteth a man if he gains the entire World at the expense of his immortal soul?